Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

How do libraries for PHP work?

You only need a key management service like this when you go from SaaS to on-prem/equivalent, at which point PHP is in the unenviable position of having readable source files.

It's possible to patch out license checks from any language, but PHP makes it pretty easy - what's your approach to solving this? Ioncube-style binary extensions? If so, PHP7/opcache compatibility?



To validate a license key requires an active internet connection. There is no compilation or obfuscation because your app never contains any license keys directly. All of the logic is handled via the API. Validating a license would require performing a GET request to a users license validation endpoint.


OK. Just to clarify, there's no protection against a malicious user with the ability to remove these API calls from their copy of the app?


Correct. There's really no way around that being a possibility, especially if you're using web technologies.


How is your question any different for Perl, Python, Ruby, or Node.js?


It's different for Go.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: